STIGQter STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The /etc/shells (or equivalent) file must exist.

DISA Rule

SV-227692r603266_rule

Vulnerability Number

V-227692

Group Title

SRG-OS-000480

Rule Version

GEN002120

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Create a /etc/shells file containing a list of valid system shells. The list below contains the default shells from the shells(4) man page.

Procedure (the command is 24 lines long):
cat >/etc/shells <<EOF
/bin/bash
/bin/csh
/bin/jsh
/bin/ksh
/bin/pfcsh
/bin/pfksh
/bin/pfsh
/bin/sh
/bin/tcsh
/bin/zsh
/sbin/jsh
/sbin/sh
/usr/bin/bash
/usr/bin/csh
/usr/bin/jsh
/usr/bin/ksh
/usr/bin/pfcsh
/usr/bin/pfksh
/usr/bin/pfsh
/usr/bin/sh
/usr/bin/tcsh
/usr/bin/zsh
EOF

Check Contents

Verify /etc/shells exists.
# ls -l /etc/shells
If the file does not exist, this is a finding.

Vulnerability Number

V-227692

Documentable

False

Rule Version

GEN002120

Severity Override Guidance

Verify /etc/shells exists.
# ls -l /etc/shells
If the file does not exist, this is a finding.

Check Content Reference

M

Target Key

4061

Comments